[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fcmxxUae0JYqUziIfFJsiqPPektCWWREKIl38azntmCE":3},{"slug":4,"name":5,"version":6,"author":7,"author_profile":8,"description":9,"short_description":10,"active_installs":11,"downloaded":12,"rating":13,"num_ratings":14,"last_updated":15,"tested_up_to":16,"requires_at_least":17,"requires_php":18,"tags":19,"homepage":25,"download_link":26,"security_score":27,"vuln_count":28,"unpatched_count":28,"last_vuln_date":29,"fetched_at":30,"vulnerabilities":31,"developer":46,"crawl_stats":37,"alternatives":52,"analysis":136,"fingerprints":200},"simple-finance-calculator","Simple Finance Calculator","1.0","weissmike","https:\u002F\u002Fprofiles.wordpress.org\u002Fweissmike\u002F","\u003Cp>A simple form that prompts a user for Interest Rate, Term in Months, and Monthly Payment or Loan Amount.\u003C\u002Fp>\n\u003Cp>You can insert the form either using a shortcode or widget.\u003C\u002Fp>\n","Creates a very simple form that can be used to calculate monthly payments or loan amount based on entered information.",40,4817,100,2,"2014-09-04T15:53:00.000Z","4.0.38","3.4","",[20,21,22,23,24],"calculator","finance","financing","shortcode","widget","http:\u002F\u002Fweissmike.com\u002Fsimple-finance-calculator-widget","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-finance-calculator.zip",63,1,"2025-10-08 00:00:00","2026-03-15T15:16:48.613Z",[32],{"id":33,"url_slug":34,"title":35,"description":36,"plugin_slug":4,"theme_slug":37,"affected_versions":38,"patched_in_version":37,"severity":39,"cvss_score":40,"cvss_vector":41,"vuln_type":42,"published_date":29,"updated_date":43,"references":44,"days_to_patch":37},"CVE-2025-60246","simple-finance-calculator-reflected-cross-site-scripting","Simple Finance Calculator \u003C= 1.0 - Reflected Cross-Site Scripting","The Simple Finance Calculator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting in versions up to, and including, 1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.",null,"\u003C=1.0","medium",6.1,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:R\u002FS:C\u002FC:L\u002FI:L\u002FA:N","Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","2025-10-29 14:54:52",[45],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002F401da94d-6538-478a-bfcd-f9c91f84a3c6?source=api-prod",{"slug":7,"display_name":7,"profile_url":8,"plugin_count":14,"total_installs":47,"avg_security_score":48,"avg_patch_time_days":49,"trust_score":50,"computed_at":51},90,74,30,76,"2026-04-04T18:43:49.464Z",[53,71,93,107,122],{"slug":54,"name":55,"version":56,"author":57,"author_profile":58,"description":59,"short_description":60,"active_installs":61,"downloaded":62,"rating":63,"num_ratings":63,"last_updated":64,"tested_up_to":65,"requires_at_least":66,"requires_php":18,"tags":67,"homepage":68,"download_link":69,"security_score":70,"vuln_count":63,"unpatched_count":63,"last_vuln_date":37,"fetched_at":30},"investment-decision-helper","Investment Decision Helper","1.1.1","anibalealvarezs","https:\u002F\u002Fprofiles.wordpress.org\u002Fanibalealvarezs\u002F","\u003Cp>You can create custom investments adding: Starting Expenditures, regular income in percentage (coupon), amortization at the end (useful for Bonds), payments frequency and price of the instruments in the secondary market .\u003C\u002Fp>\n\u003Cp>Investment Decision Helper will calculate and compare the return rates, and help you make the right choice.\u003C\u002Fp>\n\u003Cp>Note: Version 1.0.2 will still be available for those who are unwilling to add the additional Payments Frequency option. In any case, the Annual Payments scheme will show the same behaviour for the instruments.\u003C\u002Fp>\n\u003Ch3>Usage\u003C\u002Fh3>\n\u003Col>\n\u003Cli>Enter the cost of the investment.\u003C\u002Fli>\n\u003Cli>Enter the coupon or periodic income rate (interest rate).\u003C\u002Fli>\n\u003Cli>Enter the number of times the interest will be received.\u003C\u002Fli>\n\u003Cli>(Optional) Enter de last amortization in case you need it (You can assume 100% for Bonds, otherwise omit it).\u003C\u002Fli>\n\u003Cli>(Optional) Enter de Price of the instrument in percentage in case it is negotiated in secondary markets.\u003C\u002Fli>\n\u003Cli>(Optional) Select the income frequency. Base returns for instruments will be considered “Annual” unless you select a different option.\u003C\u002Fli>\n\u003Cli>(Optional) For pre-calculated return, place the corresponding Return rate. It will override every information added in previous cells (except “Frecuency”). This option won’t be placed in the chart since there’re no “Starting Expenditure” or “Coupon” to obtain the corresponding “NPV”.\u003C\u002Fli>\n\u003Cli>Click on “submit” button and look at the new box showing the return rates of both instruments. The preferred option will be featured in green, and a chart will show you the NPV behavior as IRR changes.\u003C\u002Fli>\n\u003C\u002Fol>\n","This tool will allow you to compare return rates of two different custom instruments in order to help you taking the best decision..",10,1823,0,"2014-04-16T19:28:00.000Z","3.9.40","3.8",[20,21,22,23,24],"http:\u002F\u002Fcalculadorafinanciera.co","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Finvestment-decision-helper.zip",85,{"slug":72,"name":73,"version":74,"author":75,"author_profile":76,"description":77,"short_description":78,"active_installs":79,"downloaded":80,"rating":81,"num_ratings":82,"last_updated":83,"tested_up_to":84,"requires_at_least":85,"requires_php":18,"tags":86,"homepage":89,"download_link":90,"security_score":91,"vuln_count":14,"unpatched_count":63,"last_vuln_date":92,"fetched_at":30},"cc-bmi-calculator","CC BMI Calculator","2.1.1","CC","https:\u002F\u002Fprofiles.wordpress.org\u002Fcalculatorscanadaca\u002F","\u003Cp>This is basic \u003Ca href=\"https:\u002F\u002Fcalculatorsworld.com\u002Fhealth\u002Fbmi-calculator\u002F\" rel=\"nofollow ugc\">BMI Calculator\u003C\u002Fa> for Body Mass Index calculation.\u003Cbr \u002F>\nCalculation can be done in imperial or metric units. Here is \u003Ca href=\"https:\u002F\u002Fcalculatorsworld.com\u002Fhealth\u002Fbmi-chart-men-women-metric\u002F\" rel=\"nofollow ugc\">metric BMI chart\u003C\u002Fa> and \u003Ca href=\"https:\u002F\u002Fcalculatorsworld.com\u002Fhealth\u002Fbmi-chart-men-women-imperial\u002F\" rel=\"nofollow ugc\">imperial BMI chart\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Body Mass Index calculator is for adults only. For kids and youths check these calculators: \u003Ca href=\"https:\u002F\u002Fcalculatorsworld.com\u002Fhealth\u002Fgirls-bmi-calculator\u002F\" rel=\"nofollow ugc\">BMI Calculator for 5-19 age girls\u003C\u002Fa> or\u003Cbr \u002F>\n\u003Ca href=\"https:\u002F\u002Fcalculatorsworld.com\u002Fhealth\u002Fboys-bmi-calculator\u002F\" rel=\"nofollow ugc\">BMI Calculator for 5-19 age boys\u003C\u002Fa>.\u003C\u002Fp>\n\u003Cp>Calculator is very easy customizable: you can change color of background, borders and text to match your web site’s theme and change widget title, make prefered default unit (imperial or metric).\u003Cbr \u002F>\nIt can be placed on sidebar as widget or incorporated into post or page using shortcode.\u003C\u002Fp>\n","Add a free simple customizable BMI Calculator to your web site.",900,17451,66,4,"2025-11-14T10:48:00.000Z","6.8.5","3.0",[87,20,23,88,24],"bmi-calculator","sidebar","https:\u002F\u002Fcalculatorsworld.com\u002Fhealth\u002Fbmi-calculator\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcc-bmi-calculator.2.1.1.zip",98,"2025-05-07 00:00:00",{"slug":94,"name":95,"version":74,"author":75,"author_profile":76,"description":96,"short_description":97,"active_installs":13,"downloaded":98,"rating":13,"num_ratings":28,"last_updated":99,"tested_up_to":84,"requires_at_least":85,"requires_php":18,"tags":100,"homepage":103,"download_link":104,"security_score":105,"vuln_count":28,"unpatched_count":63,"last_vuln_date":106,"fetched_at":30},"cc-canadian-mortgage-calculator","CC Canadian Mortgage Calculator","\u003Cp>This simple \u003Ca href=\"https:\u002F\u002Fcalculatorscanada.ca\u002Fmortgage-calculator\u002F\" rel=\"nofollow ugc\">Canadian mortgage calculator\u003C\u002Fa> calculates mortgage monthly payments.\u003C\u002Fp>\n\u003Cp>Calculator is very easy customizable: you can change colour of background, borders and text to match your web site’s theme and change widget title.\u003C\u002Fp>\n\u003Cp>Note: check \u003Ca href=\"https:\u002F\u002Fwordpress.org\u002Fplugins\u002Fcc-mortgage-calculator\u002F\" rel=\"ugc\">this mortgage calculator plugin\u003C\u002Fa> if you are looking for mortgage calculator for other country then Canada.\u003C\u002Fp>\n","Add a free simple customizable Canadian mortgage calculator to your web site.",6525,"2025-11-14T10:52:00.000Z",[101,102,23,88,24],"canada","mortgage-calculator","https:\u002F\u002Fcalculatorscanada.ca\u002Fmortgage-calculator-wordpress-widget\u002F","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fcc-canadian-mortgage-calculator.2.1.1.zip",99,"2025-01-06 16:19:47",{"slug":108,"name":109,"version":110,"author":111,"author_profile":112,"description":113,"short_description":114,"active_installs":11,"downloaded":115,"rating":13,"num_ratings":28,"last_updated":116,"tested_up_to":117,"requires_at_least":18,"requires_php":18,"tags":118,"homepage":18,"download_link":121,"security_score":70,"vuln_count":63,"unpatched_count":63,"last_vuln_date":37,"fetched_at":30},"simple-pregnancy-calculator","Simple Pregnancy Calculator","1.1.2","giannisdallas","https:\u002F\u002Fprofiles.wordpress.org\u002Fgiannisdallas\u002F","\u003Cp>Simple Pregnancy Calculator lets you add a datepicher in the page or in the widget area of your site.\u003C\u002Fp>\n\u003Cp>The user can select a date and the calculator provides the expected delivery date.\u003C\u002Fp>\n\u003Cp>To add the calculator to a page use [simple_pregnancy_calculator]\u003Cbr \u002F>\nTo add the calculator in a sidebar use the dashboard’s Appearence -> Widgets panel\u003C\u002Fp>\n\u003Cp>\u003Cstrong>image :\u003C\u002Fstrong> The enchanted pregnancy created by nicolas-gouny-art : http:\u002F\u002Ffav.me\u002Fd1hgv6e\u003C\u002Fp>\n\u003Cp>\u003Cem>This is my first plugin so I would love to hear your feedback. Go ahead and propose ways to make this plugin even better.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Thank you\u003C\u002Fp>\n","Simple Pregnancy Calculator lets you add a datepicher in the page or in the widget area of your site.",3305,"2017-06-02T09:55:00.000Z","4.7.32",[20,119,120,23,24],"datepicker","pregnancy","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-pregnancy-calculator.1.1.2.zip",{"slug":123,"name":124,"version":125,"author":111,"author_profile":112,"description":126,"short_description":127,"active_installs":61,"downloaded":128,"rating":63,"num_ratings":63,"last_updated":129,"tested_up_to":130,"requires_at_least":18,"requires_php":18,"tags":131,"homepage":134,"download_link":135,"security_score":70,"vuln_count":63,"unpatched_count":63,"last_vuln_date":37,"fetched_at":30},"simple-loan-mortgage-calculator","Simple Loan and Mortgage Calculator","1.0.0","\u003Cp>Simple Loan and Mortgage Calculator generates a report on the payment of any loan or mortgage.\u003C\u002Fp>\n\u003Cp>The user can select the amount, the interest and the repayment period and the calculator generates the report and the amortization schedule chart .\u003C\u002Fp>\n\u003Cp>To add the calculator to a page or widget just use [simplelmc]\u003C\u002Fp>\n\u003Cp>\u003Cem>I would love to hear your feedback. Go ahead and propose ways to make this plugin even better.\u003C\u002Fem>\u003C\u002Fp>\n\u003Cp>Thank you\u003C\u002Fp>\n","Simple Loan and Mortgage Calculator generates a report on the payment of any loan or mortgage.",1408,"2017-07-26T14:31:00.000Z","4.8.28",[20,132,133,23,24],"loan","mortgage","http:\u002F\u002Fdanielpataki.com","https:\u002F\u002Fdownloads.wordpress.org\u002Fplugin\u002Fsimple-loan-mortgage-calculator.1.0.0.zip",{"attackSurface":137,"codeSignals":156,"taintFlows":181,"riskAssessment":182,"analyzedAt":199},{"hooks":138,"ajaxHandlers":149,"restRoutes":150,"shortcodes":151,"cronEvents":155,"entryPointCount":28,"unprotectedCount":63},[139,145],{"type":140,"name":141,"callback":142,"file":143,"line":144},"action","wp_enqueue_scripts","add_stylesheet","simple-finanace-calculator.php",31,{"type":140,"name":146,"callback":147,"file":143,"line":148},"widgets_init","anonymous",215,[],[],[152],{"tag":153,"callback":154,"file":143,"line":49},"finance_calculator","calculator_shortcode",[],{"dangerousFunctions":157,"sqlUsage":161,"outputEscaping":163,"fileOperations":63,"externalRequests":63,"nonceChecks":63,"capabilityChecks":63,"bundledLibraries":180},[158],{"fn":159,"file":143,"line":148,"context":160},"create_function","add_action( 'widgets_init', create_function( '', 'register_widget( \"sfc_widget\" );' ) );",{"prepared":63,"raw":63,"locations":162},[],{"escaped":14,"rawEcho":164,"locations":165},7,[166,169,171,173,175,177,179],{"file":143,"line":167,"context":168},183,"raw output",{"file":143,"line":170,"context":168},185,{"file":143,"line":172,"context":168},186,{"file":143,"line":174,"context":168},187,{"file":143,"line":176,"context":168},206,{"file":143,"line":178,"context":168},207,{"file":143,"line":178,"context":168},[],[],{"summary":183,"deductions":184},"The simple-finance-calculator plugin version 1.0 presents a mixed security posture. While it demonstrates good practices in its handling of SQL queries with prepared statements and appears to have a limited attack surface with no unprotected entry points identified in the static analysis, several concerning signals are present. The use of the `create_function` is a significant red flag, as it is deprecated and can be a source of vulnerabilities if not handled with extreme care, often leading to code injection. Furthermore, the low percentage of properly escaped output (22%) suggests a high likelihood of cross-site scripting (XSS) vulnerabilities, allowing attackers to inject malicious scripts into web pages viewed by other users.\n\nThe vulnerability history further amplifies these concerns. The presence of a known medium severity CVE, which is currently unpatched, directly points to a past XSS vulnerability. This history, coupled with the static analysis findings regarding output escaping and the use of `create_function`, indicates a pattern of potential insecurity. While the plugin has strengths in its structured data handling, the identified risks related to code execution and unescaped output, compounded by an unpatched historical vulnerability, necessitate a cautious approach.  Users should be aware of the potential for XSS and the risks associated with the deprecated `create_function` until these issues are addressed.",[185,188,191,194,197],{"reason":186,"points":187},"Unpatched CVE",17,{"reason":189,"points":190},"Use of dangerous function (create_function)",15,{"reason":192,"points":193},"Low output escaping percentage",6,{"reason":195,"points":196},"Missing nonce checks",5,{"reason":198,"points":196},"Missing capability checks","2026-03-16T22:21:07.961Z",{"wat":201,"direct":207},{"assetPaths":202,"generatorPatterns":204,"scriptPaths":205,"versionParams":206},[203],"\u002Fwp-content\u002Fplugins\u002Fsimple-finance-calculator\u002Fsimple-finance-calculator.css",[],[],[],{"cssClasses":208,"htmlComments":215,"htmlAttributes":216,"restEndpoints":221,"jsGlobals":222,"shortcodeOutput":223},[209,210,211,212,213,214],"sfc_calculator","sfc_validation_error","sfc_error","anp","separator","sfc_results",[],[217,218,219,220],"name=\"r\"","name=\"n\"","name=\"a\"","name=\"payment\"",[],[],[224,225,226,227,228,229],"\u003Cform class=\"sfc_calculator\" method=\"post\">","\u003Cp class=\"sfc_validation_error\">","\u003Cp class=\"sfc_error\">","\u003Cdiv class=\"anp\">","\u003Cdiv class=\"separator\">\u003Cdiv>OR\u003C\u002Fdiv>\u003C\u002Fdiv>","\u003Cp class=\"sfc_results\">"]